Yesterday, the Twitter-sphere was engorged with spam tweets produced by a significant security hole in cross-scripting capability that threw the service into total disarray. People were warned repeatedly to stay off the service’s main page,...

Microsoft released a temporary "Fixit" workaround on Tuesday, to protect Windows users against a critical unpatched Windows Shell vulnerability.
Microsoft issued a security bulletin on Friday to warn customers of a 0-day exploit involving the Windows...

Microsoft said on Tuesday that it is investigating a publicly reported vulnerability in the Windows Canonical Display Driver (cdd.dll) affecting 64-bit versions of Windows 7 and Windows Server 2008 R2.
The flaw resides in the Canonical...

Twitter, the popular short message service experienced a serious flaw that impacted feeds and timelines. If you tweeted accept @bdsams, you would automatically be added to that persons follow list.
What exactly does this mean?...

Microsoft said on Tuesday that it has released a new out-of-band cumulative update for Internet Explorer 6 and 7 users.
The update (MS10-018) fixes 10 flaws, with the most serious allowing remote attackers to execute arbitrary...

Energizer is known for their batteries and not for their software. So, if you have installed the software for the Energizer Duo battery charger to monitor the charging level of your batteries, remove the...

This week marks five years since the public release of Mozilla Firefox 1.0. First available in beta form as "Phoenix" the browser was an open-source evolution of the rendering framework designed for Netscape Communicator and...

British network operator O2 has issued a statement to the BBC confirming that Apple will fix a security issue with the iPhone on Saturday via iTunes. Researchers revealed yesterday that they had discovered a flaw...

Update: Microsoft have now updated that they are going to deliver two changes to the Windows 7 Release Candidate regarding this issue. Before getting into the actual news, lets take a while to understand...

Yesterday we reported on a major UAC security flaw where malicious hackers could potentially execute a script on a users machine by tricking into them into opening a disguised exe. This script would disable UAC...

Adobe Systems warned users Tuesday that hackers could use recently-reported "clickjacking" attack tactics to secretly turn on a computer's microphone and Web camera. Flash on all platforms is susceptible to clickjacking attacks, Adobe said in...

Internet infrastructure vendors are working on patches for a set of security flaws that could help hackers knock servers offline with very little effort. The security community has been buzzing about the bugs since Tuesday,...

Apple's iPhone has two design flaws that could pose potential security problems, according to a researcher. The first one concerns the iPhone's e-mail application, which automatically downloads images within an e-mail, said Aviv Raff, a...

Ubuntu is the latest Linux vendor to patch a vulnerability in the open-source operating system's kernel that could have left the door open for hackers to find their way into users' machines. In an email...

A recently found flaw in the internet's addressing system is worse than first feared, so Dan Kaminsky said when speaking publicly about his discovery at the Black Hat conference in Las Vegas. He said...

Security researchers are claiming that Apple has failed to fully patch the high profile DNS cache poisoning error. The company issued the patch last week as part of a larger security update. The so-called Kaminsky...

BlackBerry maker Research in Motion is warning businesses to disable the function which allows a BlackBerry to read PDF files until it can issue an update, after a security flaw was found in the company's...

Microsoft warned on Friday that Apple's Safari Web browser for Windows exposes PCs to a security hole that permits potentially malicious files to be downloaded to a user's machine and run without prompting the user....

The Debian Security Advisory posted up DSA-1571-1 openssl -- predictable random number generator issue today and strongly advised its users to take steps to avoid possible compromising of any systems running on Debian, such as...

The BBC's technology programme Click has exposed a security flaw in the social networking site Facebook which could compromise privacy. Using a simple malicious application could open up yourself and your friends (who do not...

A flaw in the way Microsoft's Internet Explorer (IE) browser processes FTP commands could let attackers steal or erase data from a victim's FTP site. The bug, which affects users of IE6 and the unsupported...

Mozilla has released Thunderbird 2.0.0.12 which fixes a remote exploitation of a vulnerability that allows an attacker to execute arbitrary code on Linux and Windows. The vulnerability exists when parsing an e-mail if the "Preview"...

Out of the box, the highly touted Asus Eee PC ships with a known code-execution vulnerability that allows a hacker to remotely gain root over a network. According to a warning from RISE Security, the...

Mozilla has given a proof of concept Firefox vulnerability a "high severity" rating because an attacker can collect session information such as cookies and history, according to Mozilla security chief Window Snyder. Snyder said the...

A programming error in eBay's Skype communications software could give cybercriminals a new way to sneak their malicious software onto a victim's PC. The flaw, which was reported Thursday by security researcher Aviv Raff, has...

US-CERT is warning computer users of a possible problem with the latest version of RealPlayer after a Russian security company claimed to have found a way to exploit a critical flaw in the multimedia software....

Microsoft has reported a flaw in the way Windows and Internet Explorer handle web proxy auto discover (WPAD) connections. WPAD servers are used to deliver connecting computers with web proxy information. Microsoft said that the...

Microsoft bug squashers are investigating reports of a serious security vulnerability in Windows operating systems that could allow attackers to take control of vast numbers of machines, particularly those located off US shores. A Microsoft...

According to security researchers, the Linux kernel is prone to a local vulnerability that may result in a DoS or privilege escalation, possibly allowing the attackers to run arbitrary code on the target system. This...

Microsoft has warned that attackers are actively targeting a security vulnerability in the SafeDisc DRM technology that ships as part of Windows. The problem affects the 'secdrv.sys' file, a component of the SafeDisc copy encryption...

Microsoft is warning users to avoid suspicious websites and emails after attacks were reported on an unpatched flaw in Internet Explorer 7. The company would not provide exact figures, but said that a "limited number...

A security researcher has published a proof-of-concept exploit for a known vulnerability in Adobe Reader. The researcher, known only as 'Cyanid-E', unveiled his creation in a posting to the Full Disclosure security mailing list on...

Microsoft plans to fix a bug in the Windows operating system that has been blamed for a handful of critical vulnerabilities in Windows software. The flaw lies in the URI (Uniform Resource Identifier) handler technology...

Apple has patched a flaw in QuickTime that could allow for remote attacks. The fix addresses a vulnerability in the Windows Vista and XP versions of QuickTime, which is commonly installed as a browser plug-in...

The same hacker who discovered a recently patched QuickTime flaw affecting the Firefox browser says he has found an equally serious flaw in Adobe Systems Incorporated's PDF file format. Using Adobe Reader 8.1 on Windows...

Mozilla has released a patch today for its popular Firefox webbrowser which ditches the ability to run arbitrary script from the Firefox command line, a quick fix for a year-old QuickTime bug that could be...